Legal claims defining the scope of protection, as filed with the USPTO.
1. A method for detecting and preventing content distribution site spoofing comprising the steps of: loading a markup language document and a corresponding digital signature for processing; ensuring that said digital signature originates from a pre-specified source of said markup language document incorporated within said markup language document; dynamically computing a hash value for said markup language document and comparing said dynamically computed hash value to a hash value encrypted within said digital signature; and, detecting content distribution site spoofing either if said digital signature does not originate from said pre-specified source, or if said dynamically computed hash value does not match said hash value encrypted within said digital signature; wherein said ensuring step comprises the step of comparing a domain for said digital signature to a domain embedded in a field in said markup language document to ensure that said digital signature originates from said embedded domain.
2. The method of claim 1 , wherein said loading step comprises the step of extracting said digital signature from said markup language document.
3. The method of claim 1 , further comprising the step of further ensuring that said markup language document originates from a host server at said pre-specified source.
4. The method of claim 1 , further comprising the step of further ensuring that said markup language document originates from a host server at said embedded domain.
5. The method of claim 3 , further comprising the step the steps of; extracting at least one Internet Protocol address from said markup language document; and, ensuring that said markup language document originates from a host server having an Internet Protocol address included among said extracted at least one Internet Protocol addresses.
6. The method of claim 1 , further comprising the steps of: retrieving an embedded slogan from a digital certificate associated with said markup language document; and, modifying said markup language document to render said embedded slogan near a portion of said markup language document referencing a pre-specified slogan.
7. The method of claim 6 , wherein said embedded slogan is a markup language fragment that, when combined with other markup language fragments in said markup language document, completes said markup language document, and when one of absent and incorrect results in a defective rendering of said markup language document.
8. The method of claim 1 , further comprising the step of responsive to detecting content distribution site spoofing, modifying said markup language document to render a warning message.
9. A system for detecting and preventing content distribution site spoofing comprising: server-side page security logic; and, client-side page security logic cooperatively configured for operation with said server-side page security logic; said server-side page security logic comprising program code for computing a digital signature for a markup language document, and inserting addressing data in said markup language document; said client-side page security logic comprising program code for ensuring that said digital signature originates from a pre-specified source of said markup language document incorporated within said addressing data, comparing a dynamically computed hash value for said markup language document with a hash value encrypted within said digital signature to detect content distribution site spoofing either if said digital signature does not originate from said pre-specified source, or if said dynamically computed hash value does not match said hash value encrypted within said digital signature, and retrieving an embedded slogan from a digital certificate associated with said markup language document and modifying said markup language document to render said embedded slogan near a portion of said markup language document referencing a pre-specified slogan.
10. A machine readable storage having stored thereon a computer program for detecting and preventing content distribution site spoofing, the computer program comprising a routine set of instructions which when executed by a machine cause the machine to perform the steps of: loading a markup language document and a corresponding digital signature for processing; ensuring that said digital signature originates from a pre-specified source of said markup language document incorporated within said markup language document; dynamically computing a hash value for said markup language document and comparing said dynamically computed hash value to a hash value encrypted within said digital signature; and, detecting content distribution site spoofing either if said digital signature does not originate from said pre-specified source, or if said dynamically computed hash value does not match said hash value encrypted within said digital signature, wherein said ensuring step comprises the step of comparing a domain for said digital signature to a domain embedded in a field in said markup language document to ensure that said digital signature originates from said embedded domain.
11. The machine readable storage of claim 10 , wherein said loading step comprises the step of extracting said digital signature from said markup language document.
12. The machine readable storage of claim 10 , further comprising a routine set of instructions for additionally causing the machine to perform the step of further ensuring that said markup language document originates from a host server at said pre-specified source.
13. The machine readable storage of claim 10 , further comprising a routine set of instructions for additionally causing the machine to perform the step of further ensuring that said markup language document originates from a host server at said embedded domain.
14. The machine readable storage of claim 12 , further comprising a routine set of instructions for additionally causing the machine to perform the step the steps of; extracting at least one Internet Protocol address from said markup language document; and, ensuring that said markup language document originates from a host server having an Internet Protocol address included among said extracted at least one Internet Protocol addresses.
15. The machine readable storage of claim 10 , further comprising a routine set of instructions for additionally causing the machine to perform the steps of: retrieving an embedded slogan from a digital certificate associated with said markup language document; and, modifying said markup language document to render said embedded slogan near a portion of said markup language document referencing a pre-specified slogan.
16. The machine readable storage of claim 15 , wherein said embedded slogan is a markup language fragment that, when combined with other markup language fragments in said markup language document, completes said markup language document, and when one of absent and incorrect results in a defective rendering of said markup language document.
17. The machine readable storage of claim 10 , further comprising a routine set of instructions for additionally causing the machine to perform the step of, responsive to detecting content distribution site spoofing, modifying said markup language document to render a warning message.
18. A system for detecting and preventing content distribution site spoofing comprising the steps of: means for loading a markup language document and a corresponding digital signature for processing; means for ensuring that said digital signature originates from a pre-specified source of said markup language document incorporated within said markup language document; means for dynamically computing a hash value for said markup language document and comparing said dynamically computed hash value to a hash value encrypted within said digital signature; and, means for detecting content distribution site spoofing either if said digital signature does not originate from said pre-specified source, or if said dynamically computed hash value does not match said hash value encrypted within said digital signature; wherein said means for ensuring comprises means for comparing a domain for said digital signature to a domain embedded in a field in said markup language document to ensure that said digital signature originates from said embedded domain.
Unknown
January 17, 2012
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.